Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 07-02-2021 02
Exécuté par Bernard (administrateur) sur NANARD (LENOVO 90AV000TFR) (07-02-2021 20:56:44)
Exécuté depuis C:\Users\Bernard\Desktop
Profils chargés: Bernard
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Edimax\Edimax AC600 Wireless LAN Driver\WPSService20.exe
() [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
() [Fichier non signé] C:\Program Files\Serviio\bin\ServiioService.exe <2>
() [Fichier non signé] C:\WINDOWS\jmesoft\JME_LOAD.exe
() [Fichier non signé] C:\WINDOWS\jmesoft\Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\WINDOWS\System32\DbxSvc.exe
(Fenrir Inc. -> Fenrir Inc.) C:\Program Files (x86)\Fenrir Inc\SnapCrab for Windows\SnapCrab.exe
(Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glarysoft\Malware Hunter\Cloudscan\MHCloudSvc.exe
(Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe
(Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glarysoft\Malware Hunter\mhtray.exe
(Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glarysoft\Malware Hunter\x64\x64ProcessAssistSvc.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP Inc -> HP Inc.) C:\Program Files\HP\HP ENVY 5640 series\Bin\HPNetworkCommunicatorCom.exe
(HP Inc -> HP Inc.) C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\printfilterpipelinesvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\WINDOWS\SysWOW64\NLSSRV32.EXE
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 8\updater-ws.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 8\ws.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [216064 2014-01-06] (Realtek Semiconductor Corporation) [Fichier non signé]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-08-16] () [Fichier non signé]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [MalTray] => C:\Program Files (x86)\Glarysoft\Malware Hunter\mhtray.exe [981304 2021-01-22] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-1670754151-1075679263-2463197126-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44344 2021-01-22] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-1670754151-1075679263-2463197126-1001\...\Run: [HP ENVY 5640 series (NET)] => C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe [3769248 2019-03-19] (HP Inc -> HP Inc.)
HKU\S-1-5-21-1670754151-1075679263-2463197126-1001\...\Run: [Google Update] => C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.72\GoogleUpdateCore.exe [216392 2021-02-05] (Google LLC -> Google LLC)
HKU\S-1-5-21-1670754151-1075679263-2463197126-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1670754151-1075679263-2463197126-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1670754151-1075679263-2463197126-1001\...\MountPoints2: {5d60b288-c750-11e6-82c3-38b1dbb8e698} - "D:\iStudio.exe"
HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\WINDOWS\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 5640 series): HPDiscoPMCC11.dll
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\WINDOWS\system32\nitrolocalmon9.dll [31896 2016-07-28] (Nitro Software, Inc. -> Nitro PDF Software)
HKLM\...\Print\Monitors\PDF Architect 8 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\architect_pdfpmon_v.4.12.26.3.dll [932984 2021-02-01] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\PDF-XChange5: C:\WINDOWS\system32\pxc50pm.dll [57056 2016-01-18] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2021-02-01] (pdfforge GmbH) [Fichier non signé]
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\WSPDFelementMonitor.dll [271360 2017-10-19] (Wondershare Software) [Fichier non signé]
BootExecute: autocheck autochk *

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0C31C19F-EB68-4D38-AE4F-9D98DF41D1D1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0F72AE7F-F237-4F22-9954-2FF04A235E83} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-01-29] (Garmin International, Inc. -> )
Task: {26D93E72-0DDC-4586-A07B-B8F830CBCAC0} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [664784 2020-09-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {34093097-C654-48B2-99A0-8DBA3BDCA552} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1670754151-1075679263-2463197126-1001Core => C:\Users\Bernard\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-01-05] (Google LLC -> Google LLC)
Task: {36B64A01-4022-4232-9AF2-5FC17FE38939} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {38B9FF9D-19D9-4ACB-A84D-E3E4053B21C7} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-07] (Dropbox, Inc -> Dropbox, Inc.)
Task: {48F49662-B3FC-41BD-9CF9-E48A01892F59} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {50539A92-C859-47BF-9576-CAAA7687A809} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-07] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5BE6489F-A809-43D8-A2E8-30EAECF17486} - System32\Tasks\Opera scheduled assistant Autoupdate 1601891808 => C:\Users\Bernard\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Bernard\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {5E6793F4-1804-42F1-8203-CC0AB0851540} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {6476B3FB-7A18-4461-95C1-F97111D3CB37} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [917816 2021-01-22] (Glarysoft LTD -> Glarysoft Ltd)
Task: {6B0EB5A7-6AC2-48C2-93BF-525885E767BD} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1741416 2020-09-19] (Avast Software s.r.o. -> Avast Software)
Task: {86082A71-711A-421E-95A4-AA5768B5F501} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1670754151-1075679263-2463197126-1001UA => C:\Users\Bernard\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-01-05] (Google LLC -> Google LLC)
Task: {88A96D8E-6F89-4DB1-B7FB-05CC0EFD63E7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {9357B1C2-0264-43A0-84A5-FE9CD96F3C0D} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [6437792 2019-03-19] (HP Inc -> HP Inc.)
Task: {989B9433-29FF-4236-A06A-BD4DED40269C} - System32\Tasks\GMHSkipUAC => C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe [2439992 2021-01-22] (Glarysoft LTD -> Glarysoft Ltd)
Task: {A09F678A-075C-47D4-97E8-AFD56EBD632F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2762968 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {CDF2EF46-D5DD-49A7-B397-85D194DBE7A3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {DF35DB0F-3A0A-4D8F-B7BB-78CDE502A865} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe
Task: {F120CA6E-0FC8-424D-AA07-FB9E1B0F7732} - System32\Tasks\Opera scheduled Autoupdate 1601891730 => C:\Users\Bernard\AppData\Local\Programs\Opera\launcher.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0B66C533-BB15-4F51-AFC8-A2E594350CBC}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8B804A09-91D1-4A40-B363-493A2BE75A45}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{96ABDF6F-7BD0-458D-B61B-C1628E84253A}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF DefaultProfile: 2hi551qo.default-1612700919605
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\i4byvvma.default-release [2021-02-07]
FF Session Restore: Mozilla\Firefox\Profiles\i4byvvma.default-release -> est activé.
FF HomepageOverride: Mozilla\Firefox\Profiles\i4byvvma.default-release -> Disabled: _pvMembers_@www.mapmywayfree.com
FF HomepageOverride: Mozilla\Firefox\Profiles\i4byvvma.default-release -> Disabled: web@00022358-d56d-4f5e-a89c-d4534d7c5565
FF HomepageOverride: Mozilla\Firefox\Profiles\i4byvvma.default-release -> Disabled: web@af1e58bc-4ead-11e8-81fc-065ad97f0000
FF NewTabOverride: Mozilla\Firefox\Profiles\i4byvvma.default-release -> Disabled: _pvMembers_@www.mapmywayfree.com
FF NewTabOverride: Mozilla\Firefox\Profiles\i4byvvma.default-release -> Disabled: web@00022358-d56d-4f5e-a89c-d4534d7c5565
FF NewTabOverride: Mozilla\Firefox\Profiles\i4byvvma.default-release -> Disabled: web@af1e58bc-4ead-11e8-81fc-065ad97f0000
FF Extension: (Bloqueur de chatbot) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\i4byvvma.default-release\Extensions\app@bloqueurchatbot.xpi [2020-01-18]
FF Extension: (Wappalyzer) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\i4byvvma.default-release\Extensions\wappalyzer@crunchlabz.com.xpi [2020-09-22]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\i4byvvma.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2020-09-29]
FF Extension: (Barre de Confiance CM-CIC) - C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\i4byvvma.default-release\Extensions\{75493B06-1504-4976-9A55-B6FE240FF0BF}.xpi [2019-12-17]
FF ProfilePath: C:\Users\Bernard\AppData\Roaming\Mozilla\Firefox\Profiles\2hi551qo.default-1612700919605 [2021-02-07]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2016-07-28] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default [2021-02-01]
CHR Extension: (Google Slides) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-18]
CHR Extension: (Google Docs) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-18]
CHR Extension: (Google Drive) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-18]
CHR Extension: (YouTube) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-18]
CHR Extension: (Google Sheets) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-18]
CHR Extension: (Google Docs hors connexion) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-18]
CHR Extension: (Avast Online Security) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-18]
CHR Extension: (Skype) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-01-18]
CHR Extension: (Gmail) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-18]
CHR Extension: (Chrome Media Router) - C:\Users\Bernard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-18]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

Opera:
=======
OPR Profile: C:\Users\Bernard\AppData\Roaming\Opera Software\Opera Stable [2021-02-05]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-01-05] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [79872 2014-01-06] () [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-07] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-07] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-08-16] () [Fichier non signé]
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [559872 2014-08-06] (LENOVO -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-26] (Malwarebytes Inc -> Malwarebytes)
S3 NitroDriverReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [233112 2016-07-28] (Nitro Software, Inc. -> Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [420504 2016-07-28] (Nitro Software, Inc. -> )
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [71832 2016-07-28] (Nitro Software, Inc. -> Nalpeiron Ltd.)
R3 PDF Architect 8; C:\Program Files\PDF Architect 8\ws.exe [2731616 2020-11-16] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 8 Creator; C:\Program Files\PDF Architect 8\creator-ws.exe [628832 2020-11-16] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 8 Update Service; C:\Program Files\PDF Architect 8\updater-ws.exe [1826400 2020-11-16] (pdfforge GmbH -> pdfforge GmbH)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [413696 2018-04-30] () [Fichier non signé]
S3 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WPSService20; C:\Program Files (x86)\Edimax\Edimax AC600 Wireless LAN Driver\WPSService20.exe [96768 2015-12-15] () [Fichier non signé]
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [130336 2019-11-28] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]
S2 HPTouchpointAnalyticsService; "C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe" [X]
S3 Lenovo System Agent Service; "C:\Program Files\Lenovo\iMController\SystemAgentService.exe" [X]
S3 LSC.Services.SystemService; "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [201240 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [230344 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201768 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346592 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59496 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239840 2018-11-26] (AVAST Software s.r.o. -> AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46384 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [163416 2019-01-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111800 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87432 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1028672 2019-05-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469272 2019-05-24] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [208472 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380464 2018-11-19] (AVAST Software s.r.o. -> AVAST Software)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [241880 2015-03-10] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2021-01-26] (Malwarebytes Corporation -> Malwarebytes)
R3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [130648 2016-08-22] (GENESYS LOGIC, INC. -> GenesysLogic)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2021-02-02] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUMHFilters; C:\Program Files (x86)\Glarysoft\Malware Hunter\Native\winxp_x64\GUMHFilter.sys [41232 2020-11-23] (Glarysoft LTD -> Glarysoft Ltd)
R1 GUSBootStartup; C:\WINDOWS\System32\drivers\GUSBootStartup.sys [28936 2021-02-02] (Glarysoft LTD -> Glarysoft Ltd)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220600 2021-02-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198248 2021-02-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-02-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-02-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [142440 2021-02-07] (Malwarebytes Inc -> Malwarebytes)
R3 NVVADARM; C:\WINDOWS\system32\drivers\nvvadarm.sys [54712 2017-01-25] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RtlWlanu; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys [4655320 2016-01-20] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-07 20:56 - 2021-02-07 20:57 - 000029969 _____ C:\Users\Bernard\Desktop\FRST.txt
2021-02-07 20:55 - 2021-02-07 20:55 - 000000000 ____D C:\Users\Bernard\Desktop\FRST-OlderVersion
2021-02-07 20:53 - 2021-02-07 20:53 - 002297344 _____ (Farbar) C:\Users\Bernard\Downloads\FRST64.exe
2021-02-07 15:29 - 2021-02-07 15:29 - 000000000 ____D C:\Users\Bernard\AppData\LocalLow\IGDump
2021-02-07 14:19 - 2021-02-07 14:19 - 000220600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-02-07 14:19 - 2021-02-07 14:19 - 000198248 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-02-07 14:19 - 2021-02-07 14:19 - 000142440 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-02-07 14:19 - 2021-02-07 14:19 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-02-07 13:48 - 2021-02-07 14:18 - 000524378 _____ C:\WINDOWS\ntbtlog.txt
2021-02-07 13:28 - 2021-02-07 13:28 - 000000000 ____D C:\Users\Bernard\Desktop\Anciennes données de Firefox
2021-02-07 10:16 - 2021-02-07 14:35 - 000000878 _____ C:\Users\Bernard\Desktop\ZHPSuite.lnk
2021-02-07 10:14 - 2021-02-07 10:14 - 003480712 _____ (Nicolas Coolman) C:\Users\Bernard\Desktop\ZHPSuite.exe
2021-02-07 08:47 - 2021-02-07 08:47 - 000266320 _____ C:\WINDOWS\Minidump\020721-47250-01.dmp
2021-02-06 23:36 - 2021-02-06 23:36 - 000266320 _____ C:\WINDOWS\Minidump\020621-37265-01.dmp
2021-02-06 21:31 - 2021-02-07 14:36 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\ZHP
2021-02-06 21:31 - 2021-02-06 21:31 - 000000000 ____D C:\Users\Bernard\AppData\Local\ZHP
2021-02-06 21:21 - 2021-02-06 21:21 - 000274512 _____ C:\WINDOWS\Minidump\020621-45781-01.dmp
2021-02-06 08:51 - 2021-02-07 08:47 - 863382851 _____ C:\WINDOWS\MEMORY.DMP
2021-02-06 08:51 - 2021-02-06 08:51 - 000266320 _____ C:\WINDOWS\Minidump\020621-28046-01.dmp
2021-02-05 21:25 - 2021-02-05 21:32 - 000000000 ____D C:\WINDOWS\softwaredistribution.bak1
2021-02-05 17:42 - 2021-02-05 17:42 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\PDF Architect 8
2021-02-05 17:42 - 2021-02-05 17:42 - 000000000 ____D C:\spellings
2021-02-05 13:26 - 2021-02-07 14:20 - 000000000 ____D C:\Program Files\CCleaner
2021-02-05 13:26 - 2021-02-07 09:51 - 000004128 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-05 13:26 - 2021-02-05 13:26 - 000002808 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-02-05 13:26 - 2021-02-05 13:26 - 000000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-02-05 13:25 - 2021-02-05 13:25 - 030584912 _____ (Piriform Software Ltd) C:\Users\Bernard\Desktop\ccsetup576.exe
2021-02-04 09:57 - 2021-02-04 09:57 - 000001958 _____ C:\Users\Bernard\Desktop\cbslog.bat
2021-02-03 21:42 - 2021-02-03 21:42 - 000000212 _____ C:\Users\Bernard\Desktop\RapportCHK_03-02-2021.txt
2021-02-03 21:26 - 2021-02-03 21:26 - 000290111 _____ C:\Users\Bernard\Desktop\Report_CHKDSK.exe
2021-02-03 21:20 - 2021-02-03 21:40 - 000000214 _____ C:\Users\Bernard\Downloads\RapportCHK_03-02-2021.txt
2021-02-03 19:03 - 2021-02-03 19:16 - 000290111 _____ C:\Users\Bernard\Downloads\Report_CHKDSK.exe
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-02-02 17:44 - 2021-02-02 17:45 - 298479616 _____ C:\Users\Bernard\Downloads\LibreOffice_(32bit)_v7.0.4(1).msi
2021-02-02 10:54 - 2021-02-02 10:54 - 003334088 _____ (Alexander Roshal) C:\Users\Bernard\Downloads\WinRAR_(64bit)_v6.00.exe
2021-02-02 10:53 - 2021-02-02 10:53 - 029285264 _____ (TeamViewer Germany GmbH) C:\Users\Bernard\Downloads\TeamViewer_v15.14.3(1).exe
2021-02-02 10:51 - 2021-02-02 10:51 - 017249232 _____ (VS Revo Group ) C:\Users\Bernard\Downloads\Revo_Uninstaller_Pro_v4.4.0.exe
2021-02-02 10:46 - 2021-02-02 10:47 - 223510528 _____ C:\Users\Bernard\Downloads\Nitro_Pro_(64bit)_v13.31.0.605.msi
2021-02-02 10:44 - 2021-02-02 10:45 - 298479616 _____ C:\Users\Bernard\Downloads\LibreOffice_(32bit)_v7.0.4.msi
2021-02-02 10:43 - 2021-02-05 10:14 - 000002992 _____ C:\WINDOWS\system32\Tasks\GMHSkipUAC
2021-02-02 10:43 - 2021-02-02 10:43 - 000001243 _____ C:\Users\Public\Desktop\Malware Hunter.lnk
2021-02-02 10:42 - 2021-02-02 10:42 - 076264592 _____ (Glarysoft Ltd) C:\Users\Bernard\Downloads\Malware_Hunter_v1.119.0.712.exe
2021-02-02 10:41 - 2021-02-05 10:14 - 000002972 _____ C:\WINDOWS\system32\Tasks\GU5SkipUAC
2021-02-02 10:40 - 2021-02-02 10:41 - 018668624 _____ (Glarysoft Ltd) C:\Users\Bernard\Downloads\Glary_Utilities_v5.159.0.185(1).exe
2021-02-01 21:51 - 2021-02-01 21:55 - 000000823 _____ C:\Users\Public\Desktop\PDF Architect 8.lnk
2021-02-01 21:50 - 2021-02-01 21:55 - 000000000 ____D C:\Program Files\PDF Architect 8
2021-02-01 21:50 - 2021-02-01 21:50 - 000000000 ____D C:\Users\Bernard\Documents\PDF Architect
2021-02-01 21:50 - 2021-02-01 21:50 - 000000000 ____D C:\Program Files (x86)\PDF Architect 8
2021-02-01 21:36 - 2021-02-01 21:44 - 018668624 _____ (Glarysoft Ltd) C:\Users\Bernard\Downloads\Glary_Utilities_v5.159.0.185.exe
2021-02-01 21:35 - 2021-02-01 21:35 - 000000000 ____D C:\Users\Bernard\AppData\Local\pdfforge
2021-02-01 21:27 - 2021-02-01 21:33 - 035881416 _____ (pdfforge GmbH) C:\Users\Bernard\Downloads\PDFCreator_v4.2.0.exe
2021-02-01 21:20 - 2021-02-01 21:22 - 012712515 _____ C:\Users\Bernard\Downloads\Paint.NET_v4.2.15.zip
2021-02-01 21:10 - 2021-02-01 21:16 - 029285264 _____ (TeamViewer Germany GmbH) C:\Users\Bernard\Downloads\TeamViewer_v15.14.3.exe
2021-02-01 20:54 - 2021-02-01 21:07 - 074527128 _____ (Skype Technologies S.A.) C:\Users\Bernard\Downloads\Skype_v8.68.0.96(1).exe
2021-02-01 19:42 - 2021-02-01 19:42 - 003853600 _____ (Don HO don.h@free.fr) C:\Users\Bernard\Downloads\NotePad_(32bit)_v7.9.2.exe
2021-02-01 18:24 - 2021-02-01 18:24 - 008457584 _____ (Malwarebytes) C:\Users\Bernard\Downloads\adwcleaner_8.0.9.1.exe
2021-02-01 18:20 - 2021-02-01 18:20 - 008457584 _____ (Malwarebytes) C:\Users\Bernard\Desktop\adwcleaner_8.0.9.1(1).exe
2021-02-01 16:15 - 2021-02-01 16:15 - 047560000 _____ (FinalWire Ltd. ) C:\Users\Bernard\Downloads\aida64extreme620(1).exe
2021-02-01 12:24 - 2021-02-01 12:26 - 047560000 _____ (FinalWire Ltd. ) C:\Users\Bernard\Downloads\aida64extreme620.exe
2021-01-28 09:18 - 2021-01-28 09:18 - 001504312 _____ (Adobe) C:\Users\Bernard\Downloads\uninstall_flash_player(2).exe
2021-01-27 18:26 - 2021-02-06 21:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2021-01-27 12:56 - 2021-01-27 12:56 - 001504312 _____ (Adobe) C:\Users\Bernard\Downloads\uninstall_flash_player(1).exe
2021-01-27 11:16 - 2021-02-07 08:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-27 10:11 - 2021-01-08 02:21 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-27 10:11 - 2021-01-08 02:13 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-27 09:45 - 2021-01-27 09:45 - 001504312 _____ (Adobe) C:\Users\Bernard\Downloads\uninstall_flash_player.exe
2021-01-26 14:26 - 2021-02-07 14:19 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-26 14:24 - 2021-01-26 14:24 - 002086424 _____ (Malwarebytes) C:\Users\Bernard\Downloads\MBSetup.exe
2021-01-26 13:41 - 2021-01-26 13:42 - 000000000 ____D C:\Users\Bernard\AppData\Local\SumatraPDF
2021-01-26 13:41 - 2021-01-26 13:41 - 009380520 _____ (Krzysztof Kowalczyk) C:\Users\Bernard\Downloads\SumatraPDF-3.2-64-install.exe
2021-01-26 13:41 - 2021-01-26 13:41 - 000002068 _____ C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2021-01-26 13:41 - 2021-01-26 13:41 - 000002060 _____ C:\Users\Bernard\Desktop\SumatraPDF.lnk
2021-01-26 11:02 - 2021-01-26 11:02 - 008457584 _____ (Malwarebytes) C:\Users\Bernard\Desktop\adwcleaner_8.0.9.1.exe
2021-01-23 15:43 - 2021-01-23 15:43 - 000001224 _____ C:\Users\Bernard\Desktop\Mozilla Thunderbird.lnk
2021-01-23 15:40 - 2021-01-23 15:40 - 014576796 _____ C:\Users\Bernard\Downloads\emoji-1.78.7-tb.xpi

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-07 20:56 - 2019-01-15 23:24 - 000000000 ____D C:\FRST
2021-02-07 20:55 - 2019-01-16 23:58 - 002297344 _____ (Farbar) C:\Users\Bernard\Desktop\FRST64.exe
2021-02-07 20:55 - 2016-11-18 17:15 - 000000000 ____D C:\Users\Bernard\AppData\LocalLow\Mozilla
2021-02-07 20:42 - 2018-05-19 06:56 - 000001208 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-02-07 16:25 - 2018-04-27 08:52 - 000003936 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4FCE7704-B524-430B-961B-852EE57B2459}
2021-02-07 14:20 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2021-02-07 14:18 - 2020-07-29 16:42 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-07 14:18 - 2018-05-19 06:56 - 000001204 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-02-07 14:18 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-07 14:07 - 2015-03-19 11:06 - 000000000 ____D C:\Users\Bernard\AppData\Local\ElevatedDiagnostics
2021-02-07 13:56 - 2015-03-18 10:15 - 021971456 ___SH C:\Users\Bernard\Desktop\Thumbs.db
2021-02-07 13:47 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2021-02-07 11:53 - 2015-03-19 22:37 - 000000000 ____D C:\Users\Bernard\Documents\bernard
2021-02-07 09:46 - 2018-02-28 17:50 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1670754151-1075679263-2463197126-1001
2021-02-07 08:56 - 2018-07-11 08:23 - 000004168 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-07 08:47 - 2017-04-18 06:41 - 000000000 ____D C:\WINDOWS\Minidump
2021-02-07 08:47 - 2015-03-15 21:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-06 23:44 - 2020-04-09 22:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-06 23:30 - 2015-03-15 18:11 - 000000000 ____D C:\Users\Bernard
2021-02-06 10:10 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-02-06 09:44 - 2015-08-24 09:19 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-02-05 14:54 - 2018-11-20 12:35 - 000000000 ____D C:\Users\Bernard\Documents\capt ecran
2021-02-05 14:46 - 2020-01-05 23:33 - 000003684 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1670754151-1075679263-2463197126-1001UA
2021-02-05 14:46 - 2020-01-05 23:33 - 000003412 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1670754151-1075679263-2463197126-1001Core
2021-02-05 14:09 - 2014-12-25 20:31 - 000000000 ____D C:\WINDOWS\softwaredistribution.bak
2021-02-05 13:57 - 2015-03-20 09:27 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\uTorrent
2021-02-05 13:56 - 2017-04-17 08:38 - 000000000 ____D C:\Users\Bernard\AppData\Local\CrashDumps
2021-02-05 13:56 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\ModemLogs
2021-02-05 13:48 - 2016-11-14 11:51 - 000000000 ____D C:\Temp
2021-02-05 10:14 - 2020-10-05 10:56 - 000004300 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1601891808
2021-02-05 10:14 - 2020-10-05 10:55 - 000004088 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1601891730
2021-02-05 10:14 - 2020-08-28 23:10 - 000003174 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1670754151-1075679263-2463197126-1001
2021-02-05 10:14 - 2019-11-17 15:45 - 000003562 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP ENVY 5640 series
2021-02-05 10:14 - 2018-05-19 19:46 - 000004476 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-05 10:14 - 2018-05-19 06:56 - 000004180 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-02-05 10:14 - 2018-05-19 06:56 - 000003944 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-02-05 10:14 - 2017-01-18 13:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-02-04 13:53 - 2013-08-22 16:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-04 09:20 - 2016-08-04 11:14 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2021-02-03 23:41 - 2015-06-26 15:53 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\vlc
2021-02-03 20:50 - 2015-10-19 22:32 - 000000000 ____D C:\Users\Bernard\Downloads\PhotoShop CS6
2021-02-03 12:54 - 2017-09-08 07:25 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2021-02-02 11:02 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\Registration
2021-02-02 10:55 - 2015-06-27 10:41 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-02-02 10:55 - 2015-04-13 23:17 - 000000000 ____D C:\Program Files\WinRAR
2021-02-02 10:52 - 2018-08-17 21:27 - 000001104 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2021-02-02 10:43 - 2017-05-23 11:31 - 000028936 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUSBootStartup.sys
2021-02-02 10:41 - 2016-08-04 11:14 - 000028936 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
2021-02-02 10:41 - 2016-08-04 11:14 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\GlarySoft
2021-02-02 10:20 - 2016-03-22 09:59 - 000000000 ____D C:\Users\Bernard\Documents\MyHeritage
2021-02-02 08:09 - 2016-05-30 14:37 - 000000000 ____D C:\Program Files\PDFCreator
2021-02-01 21:35 - 2018-10-22 14:24 - 000000680 _____ C:\Users\Public\Desktop\PDFCreator.lnk
2021-02-01 21:35 - 2016-05-30 14:37 - 000116736 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2021-02-01 21:24 - 2015-10-18 22:43 - 000000000 ____D C:\Program Files\paint.net
2021-02-01 21:09 - 2020-04-25 11:16 - 000001337 _____ C:\Users\Public\Desktop\Skype.lnk
2021-02-01 19:42 - 2021-01-06 20:56 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Notepad++
2021-02-01 19:42 - 2021-01-06 20:56 - 000000000 ____D C:\Program Files (x86)\Notepad++
2021-02-01 15:34 - 2015-06-26 15:52 - 000001097 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-02-01 11:53 - 2018-07-11 08:28 - 000000000 ____D C:\Users\Bernard\AppData\Local\AVAST Software
2021-02-01 10:14 - 2016-01-07 09:57 - 000000000 ____D C:\Users\Bernard\Documents\christine
2021-02-01 09:57 - 2015-03-15 18:12 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Adobe
2021-01-28 18:00 - 2015-03-15 18:12 - 000000000 ____D C:\Users\Bernard\AppData\Local\Lenovo
2021-01-28 17:20 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-01-28 17:20 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-01-27 10:41 - 2013-08-22 15:44 - 000584536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-27 10:28 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2021-01-27 10:17 - 2015-03-15 21:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-27 10:14 - 2015-03-15 21:31 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-26 14:26 - 2019-06-30 07:25 - 000001975 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-01-26 14:25 - 2019-06-30 07:25 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-01-23 12:56 - 2020-09-24 19:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-01-23 12:45 - 2020-04-13 10:45 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-01-23 12:45 - 2018-10-24 16:43 - 000000000 ____D C:\Users\Bernard\AppData\Local\Deployment
2021-01-13 08:30 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-13 08:30 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-12 18:12 - 2014-12-25 20:29 - 000000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2021-01-12 18:12 - 2014-12-25 20:29 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2021-01-12 18:12 - 2014-12-25 20:29 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-01-12 18:10 - 2015-03-21 12:38 - 000000000 ____D C:\Users\Bernard\AppData\Local\Macromedia
2021-01-12 18:10 - 2015-03-15 18:11 - 000000000 ____D C:\Users\Bernard\AppData\Roaming\Macromedia

==================== Fichiers à la racine de certains dossiers ========

2005-09-02 22:05 - 2005-09-02 22:05 - 000000209 ____H () C:\Users\Bernard\AppData\Roaming\Bernardv1.18.0 - Trial versionlog.dat
2015-03-15 18:12 - 2020-09-23 07:39 - 2073657253 _____ () C:\Users\Bernard\AppData\Local\BTServer.log
2015-08-02 21:54 - 2018-08-28 20:19 - 000007597 _____ () C:\Users\Bernard\AppData\Local\resmon.resmoncfg
2017-05-03 20:37 - 2017-05-03 20:37 - 000017408 _____ () C:\Users\Bernard\AppData\Local\WebpageIcons.db

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2018-02-25 14:19
==================== Fin de FRST.txt ========================